Solved

LDAP Query SCCM 2012 Check group membership

Posted on 2013-01-25
2
1,831 Views
Last Modified: 2013-04-22
Hi all,

I want to create a global Condition to check if a user is member of a group in AD
and add that Global condition to an application

1) Is this possible?
2) If so how

I have an LDAP Query that does this:
(&(objectClass=user)(sAMAccountName=yourUserName)(memberof=CN=YourGroup,OU=Users,DC=YourDomain,DC=com))

But i need to translate this into the SCCM 2012 Form

What do i add where?

LDAP Prefix:
Distiguished name:
Search Filter:
Search Scope:
Property:

any help is welcome
0
Comment
Question by:cornilm
2 Comments
 
LVL 31

Accepted Solution

by:
merowinger earned 500 total points
Comment Utility
When creating a global condition select the folloowing options:

"Windows" as device type
"Setting" as condition type
"Active Directory" as Setting type

Then you can configure you LDAP Search for your specific Group.

I would enable AD User and Group Discovery and build User Collections to achieve this
0
 

Author Closing Comment

by:cornilm
Comment Utility
sry for the late reply i have been sick
0

Featured Post

Get up to 2TB FREE CLOUD per backup license!

An exclusive Black Friday offer just for Expert Exchange audience! Buy any of our top-rated backup solutions & get up to 2TB free cloud per system! Perform local & cloud backup in the same step, and restore instantly—anytime, anywhere. Grab this deal now before it disappears!

Join & Write a Comment

New Windows 7 Installations take days for Windows-Updates to show up and install. This can easily be fixed. I have finally decided to write an article because this seems to get asked several times a day lately. This Article and the Links apply to…
The recent Microsoft changes on update philosophy for Windows pre-10 and their impact on existing WSUS implementations.
This tutorial will walk an individual through locating and launching the BEUtility application to properly change the service account username and\or password in situation where it may be necessary or where the password has been inadvertently change…
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…

744 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

13 Experts available now in Live!

Get 1:1 Help Now